Hello all, thank you in advance for any help or providing a direction of where I can find more resources. This is really scaring me and frustrating me because I just don't have the skillset to determine what's going on.
Laptop = HP Pavilion 15-cd0xx
AMD A12-9720P Radeon R7
64bit w/ Windows 10 Home
Router= TpLink Archer A7. Original firmware. Basic settings
Modem = Ariss SB6190 again no changes
REaltek PCIe GBE Family Controller
I had Kaspersky for a while but when annual renew came up I didn't renew. NOw using basic windows Defender and windows Firewall.
Malwarebytes also.
Was using Security Task Manager
I also use 1.1.1.1 for computer and iphone 8+
ISP = Centracom - Cable modem.
Devices connected through wifi prior to this problem.= 1 roku, 2 laptops (personal and work. Work has extensive protections for all the HIPPA related info including digipass and much more), Iphone 8+ w/ 1.1.1.1.
Devices connected now only through ethernet to router to modem is my personal laptop.
Issue: I reset my router last night to factory settings becuase I was messing with the beacon and messing with something else, laptop stopped connecting so I just reset to factory and started over. I then made the basic changes to the settings ; I changed ssid, password for ssid, admin password. reduced signal strength to medium, added 1.1.1.1 for DNS, removed remote connection ability, put all security to auto with WPA2,
Worked fine, just as it did when I first purchased.
This morning, I noticed speeds were very slow, when I checked if I was connected to the 2.4 or 5 connection I noticed I was connected to an SSID that I did not create and have never used before, but it was similar to what I just named my connection the night before (after the reset).
I immediately disconnected and then connected to my own 2.4 wifi network of which the name I created the night before.
I then Opened wireshark, disconnected from my connection that I created and connected once again to the name of the SSID that I didn't recognize and did not create but the name was similar to my own. I have those details if needed. I let wireshark run for about 5 minutes.
I found a few entries that were strange so I ran Zenmap on a couple IP addresses and found the identified OS was Tomato Linux running on a Sony Erickson. I've never owned a sony erickson and I've never used Tomato LInux either. My router's firmware is original never changed.
Last bit of info. As soon as I ran Zenmap it didn't even finish the intense scan when all my wifi networks disappeared and I lost connection to the internet. The only connection still available was the strange one i didn't recognize but whos name was similar to the new SSID's i created the night before.
I still this evening cannot connect to wifi because my computer, and my iphone both cannot find the wifi connection i created last night but they can find the new strange one i didi not create. . I currently am using my ethernet cable to connect to router and to the internet.
AGAIN, I HAVE WIRESHARK AND ZENMAP details I can provide if that would help??? Thank you so much for any help!!!
Laptop = HP Pavilion 15-cd0xx
AMD A12-9720P Radeon R7
64bit w/ Windows 10 Home
Router= TpLink Archer A7. Original firmware. Basic settings
Modem = Ariss SB6190 again no changes
REaltek PCIe GBE Family Controller
I had Kaspersky for a while but when annual renew came up I didn't renew. NOw using basic windows Defender and windows Firewall.
Malwarebytes also.
Was using Security Task Manager
I also use 1.1.1.1 for computer and iphone 8+
ISP = Centracom - Cable modem.
Devices connected through wifi prior to this problem.= 1 roku, 2 laptops (personal and work. Work has extensive protections for all the HIPPA related info including digipass and much more), Iphone 8+ w/ 1.1.1.1.
Devices connected now only through ethernet to router to modem is my personal laptop.
Issue: I reset my router last night to factory settings becuase I was messing with the beacon and messing with something else, laptop stopped connecting so I just reset to factory and started over. I then made the basic changes to the settings ; I changed ssid, password for ssid, admin password. reduced signal strength to medium, added 1.1.1.1 for DNS, removed remote connection ability, put all security to auto with WPA2,
Worked fine, just as it did when I first purchased.
This morning, I noticed speeds were very slow, when I checked if I was connected to the 2.4 or 5 connection I noticed I was connected to an SSID that I did not create and have never used before, but it was similar to what I just named my connection the night before (after the reset).
I immediately disconnected and then connected to my own 2.4 wifi network of which the name I created the night before.
I then Opened wireshark, disconnected from my connection that I created and connected once again to the name of the SSID that I didn't recognize and did not create but the name was similar to my own. I have those details if needed. I let wireshark run for about 5 minutes.
I found a few entries that were strange so I ran Zenmap on a couple IP addresses and found the identified OS was Tomato Linux running on a Sony Erickson. I've never owned a sony erickson and I've never used Tomato LInux either. My router's firmware is original never changed.
Last bit of info. As soon as I ran Zenmap it didn't even finish the intense scan when all my wifi networks disappeared and I lost connection to the internet. The only connection still available was the strange one i didn't recognize but whos name was similar to the new SSID's i created the night before.
I still this evening cannot connect to wifi because my computer, and my iphone both cannot find the wifi connection i created last night but they can find the new strange one i didi not create. . I currently am using my ethernet cable to connect to router and to the internet.
AGAIN, I HAVE WIRESHARK AND ZENMAP details I can provide if that would help??? Thank you so much for any help!!!
Last edited: